Embarrasing…. and a big pain in the neck for any of their visitors… It seems as though if you’ve visited Circuit City’s Support Forum with an unpatched Internet Explorer, you likely have a trojan/backdoor of some sort on your pc. (Assuming Explorer hasn’t been patched since January. In reality – if you haven’t updated explorer since then, there are likely SEVERAL backdoors. Call someone to work on it….)

It’s really embarrasing I’m sure for the company to have been serving this up in their support forum, but what’s amazing is that their site was hacked May 13th. They were notified today and have taken steps to remove the exploit. (2 weeks and 5 days….) In all fairness the forum is not hosted on the same server as circuitcity.com but is reachable from their homepage.

It looks like the backdoor was served up from Russian IP addresses (this in particular seems to be a particularly bad neighborhood.) Also, the backdoor itself was a spam sender apparently changing the messages every 10 minutes or 70,000 messages (whichever comes first????). Who knows how many pc’s have picked up this bug from Circuity city’s support forum.

Folks – update your antivirus, keep windows patched, if you don’t think you can do that on your own, get somebody else to help with that. (sigh… this batch of news today has been pretty depressing… I just finished cleaning out a trojaned laptop (Antivirus had expired August of 2004) and am picking up a machine tomorrow for a wipe and factory reinstall…. at least you feel like you’re making some headway like that) What’s depressing is wondering how many people out there are backdoored and don’t have a clue. (Like I say, the laptop hadn’t had updated AV since August of 2004. How many junk mails had it sent?)

Related Posts

Preventing the automatic update to Internet Explorer 7Internet Explorer 7 is set to be released this month (October 2006) and it will likely be an automatic update for Windows users either November or December of this year. (I'm thinking November.) Now, it's been a long time in the making, at one point Microsoft said there wouldn't be......

Microsoft June Patch Cycle heads upIt's about that time again folks.... Monthly Microsoft patch cycle - June patches will be released on the 13th (next Tuesday) and it looks like a big batch. There should be 12 patches this time and at least one of the Windows updates is Critical and at least one of......

Internet Explorer 0-day (take 2 of the last few days...)The last zero day (activeX) seems to be less interesting than this NEW zero-day that really made a news splash in the last day. It looks as though this NEW 0-day affects VML... Incidents.org has good coverage here. Microsoft has an advisory up and they expect to release a patch......

Shopping Fun Facts - The Day After ThanksgivingBlack Friday - is the name given to the busy shopping day the Friday after Thanksgiving. This term, which began in the mid 1970s, most likely refers to retailers’ sales moving from the red into the black (making a profit). Not the busiest shopping day?! The day after Thanksgiving is......

Park City Mountain Resort, Park City, UTPark City Mountain Resort is located in: Park City, UT Phone: (800) 222-7275 Website: http://www.parkcitymountain.com/winter/index.html About the Resort: Park City Mountain Resort is considered by many to be one of the finest ski resorts in the world. With a great location, some recent renovations and a commitment to sustaining the......

[How To] Jailbreak iPad 2 on iOS 4.3.3 Using JailbreakMe 3.0A couple of days back, JailbreakMe 3.0 was leaked by a private beta tester. The jailbreak was buggy and did not work for many iPad 2 users. Now, @Comex has released the final version of JailbreakMe 3.0 which enables users to jailbreak their iPad 2 on iOS 4.3.3 and install......